diff --git a/deploy/sonatype-nexus/nexus-deploy.yaml b/deploy/sonatype-nexus/nexus-deploy.yaml
index bfba838..509ea11 100644
--- a/deploy/sonatype-nexus/nexus-deploy.yaml
+++ b/deploy/sonatype-nexus/nexus-deploy.yaml
@@ -2,8 +2,6 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   name: sonatype-nexus
-  labels:
-    app: sonatype-nexus
 spec:
   replicas: 1
   selector:
@@ -14,9 +12,14 @@ spec:
       labels:
         app: sonatype-nexus
     spec:
+      securityContext:
+        fsGroup: 200 # Set the fsGroup so that volume directories are writable by the Nexus process
       containers:
         - name: nexus
           image: sonatype/nexus3
+          securityContext:
+            runAsUser: 200 # Ensure the container runs as the nexus user
+            runAsGroup: 200
           ports:
             - containerPort: 8081
           volumeMounts: